2018 Latest CompTIA PenTest+ PT0-001 Practice Questions

CompTIA PenTest+ is the only penetration testing exam taken at a Pearson VUE testing center with both hands-on, performance-based questions and multiple-choice, to ensure each candidate possesses the skills, knowledge, and ability to perform tasks on systems. Passquestion new released the latest CompTIA PenTest+ PT0-001 Practice Questions for you to practice,all PT0-001 questions and answers are collected from real test,If you practice well, you will pass your CompTIA PenTest+ PT0-001 certification exam successfully.

CompTIA PenTest+ PT0-001 Practice Questions

1. A security analyst was provided with a detailed penetration report, which was performed against the organization’s DMZ environment. It was noted on the report that a finding has a CVSS base score of 100.

Which of the following levels of difficulty would be required to exploit this vulnerability?

 
 
 
 

2. A penetration tester has gained access to a marketing employee’s device. The penetration tester wants to ensure that if the access is discovered, control of the device can be regained.

Which of the actions should the penetration tester use to maintain persistence to the device? (Select TWO)

 
 
 
 
 
 

3. Which of the following tools is used to perform a credential brute force attack?

 
 
 
 

4. Which of the following situations would cause a penetration tester to communicate with a system owner/client during the course of a test? (Select Two)

 
 
 
 
 

5. A penetration tester has performed a security assessment for a startup firm. The report lists a total of ten vulnerabilities, with five identified as critical. The client does not have the remediate to immediately remediate all vulnerabilities.

Under such circumstances which of the following would be the BEST suggestion for the client?

 
 
 
 

6. Which of the following is the reason why a penetration tester would run the chkconfig –del servicename command at the end of an engagement?

 
 
 
 

7. A penetration tester wants to target NETBIOS name service.

Which of the following is the MOST likely command to exploit the NETBIOS name service?

 
 
 
 

8. A security consultant receives a document outlining the scope of an upcoming penetration test. This document contains IP addresses and times that each can be scanned.

Which of the following would contain this information?

 
 
 
 

9. A penetration tester reviews the scan results of a web application.

Which of the following vulnerabilities is MOST critical and should be prioritized for exploitation?

 
 
 
 

10. A penetration tester observes that several high-numbered ports are listening on a public web server. However, the system owner says the application only uses port 443.

Which of the following would be BEST to recommend?

 
 
 
 

CompTIA Project+ PK0-004 Practice Questions Online
[N10-007 Free Questions] N10-007 CompTIA Network+ Certification Exam

Leave a Reply

Your email address will not be published. Required fields are marked *